Configure Replit enterprise SSO, role-based access control, and organization management. Use when implementing SSO integration, configuring role-based permissions, or setting up organization-level controls for Replit. Trigger with phrases like "replit SSO", "replit RBAC", "replit enterprise", "replit roles", "replit permissions", "replit SAML".
From replit-packnpx claudepluginhub nickloveinvesting/nick-love-plugins --plugin replit-packThis skill is limited to using the following tools:
Guides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.
Migrates code, prompts, and API calls from Claude Sonnet 4.0/4.5 or Opus 4.1 to Opus 4.5, updating model strings on Anthropic, AWS, GCP, Azure platforms.
Details PluginEval's skill quality evaluation: 3 layers (static, LLM judge), 10 dimensions, rubrics, formulas, anti-patterns, badges. Use to interpret scores, improve triggering, calibrate thresholds.
Manage team access to Replit workspaces, deployments, and AI coding features using its Teams and Organizations model. Replit uses per-seat licensing with workspace roles: Owner, Admin, and Member.
# replit-role-matrix.yaml
roles:
owner:
permissions: [manage_billing, manage_members, manage_deployments, create_repls, use_ai, admin_settings]
admin:
permissions: [manage_members, manage_deployments, create_repls, use_ai]
member:
permissions: [create_repls, use_ai, deploy_to_staging]
restrictions: [cannot_deploy_to_prod, cannot_manage_members]
Navigate to Replit Teams > Members and invite users with assigned roles. For bulk management, use the Replit API:
set -euo pipefail
# Invite a team member
curl -X POST https://replit.com/api/v1/teams/TEAM_ID/members \
-H "Authorization: Bearer $REPLIT_API_KEY" \
-d '{"email": "dev@company.com", "role": "member"}'
# List current team members
curl https://replit.com/api/v1/teams/TEAM_ID/members \
-H "Authorization: Bearer $REPLIT_API_KEY" | jq '.[] | {username, email, role}'
Separate staging and production deployment access:
Configure in Team Settings > Deployments > Permission Policy.
In Organization Settings > Security > SSO:
set -euo pipefail
# Review recent team activity
curl "https://replit.com/api/v1/teams/TEAM_ID/audit-log?limit=50" \
-H "Authorization: Bearer $REPLIT_API_KEY" | \
jq '.events[] | {user, action, resource, timestamp}'
| Issue | Cause | Solution |
|---|---|---|
| Member can't deploy | Missing deployment permission | Promote to Admin or adjust deployment policy |
| SSO login redirect loop | Incorrect callback URL | Verify ACS URL in IdP matches Replit config |
| Seat limit exceeded | Too many active members | Remove inactive members or upgrade seat count |
| AI features disabled | Ghostwriter not enabled for team | Enable AI features in Team Settings |
Basic usage: Apply replit enterprise rbac to a standard project setup with default configuration options.
Advanced scenario: Customize replit enterprise rbac for production environments with multiple constraints and team-specific requirements.